[Git][security-tracker-team/security-tracker][master] Add CVE-2025-1390/libcap2

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
491276e2 by Salvatore Bonaccorso at 2025-02-18T19:42:58+01:00
Add CVE-2025-1390/libcap2

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -51,7 +51,9 @@ CVE-2025-25055 (Authentication bypass by spoofing issue exists in FileMegane ver
 CVE-2025-20075 (Server-side request forgery (SSRF) vulnerability exists in FileMegane  ...)
 	NOT-FOR-US: FileMegane
 CVE-2025-1390 (The PAM module pam_cap.so of libcap configuration supports group names ...)
-	TODO: check
+	- libcap2 <unfixed>
+	NOTE: https://bugzilla.openanolis.cn/show_bug.cgi?id=18804
+	NOTE: Fixed by: https://git.kernel.org/pub/scm/libs/libcap/libcap.git/commit/?id=1ad42b66c3567481cc5fa22fc1ba1556a316d878
 CVE-2025-0864 (The Active Products Tables for WooCommerce. Use constructor to create  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-0805 (The Mortgage Calculator / Loan Calculator plugin for WordPress is vuln ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/491276e2f047adcacf85c52189264b18724cff3c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/491276e2f047adcacf85c52189264b18724cff3c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250218/70db5fe2/attachment-0001.htm>